Lucene search
K

12 matches found

OSSF Malicious Packages
OSSF Malicious Packages
added 2025/11/11 7:26 a.m.2 views

Malicious code in filthy_owl_replicate_automation (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 98e5ef177bb7f310c7bdbcfbe6749ae209dbecc4392879e1c57820956bfdea59 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.9AI score
Exploits0
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-3513

Malicious code in bioql PyPI...

9.8CVSS9.2AI score0.0232EPSS
Exploits0References11
OSV
OSV
added 2025/08/14 6:52 p.m.1 views

MAL-2025-14058 Malicious code in actordata (npm)

The package actordata was found to contain malicious code...

7.2AI score
Exploits0
OSV
OSV
added 2025/08/14 6:52 p.m.1 views

MAL-2025-32754 Malicious code in sbitbot (npm)

The package sbitbot was found to contain malicious code...

7.2AI score
Exploits0
OSV
OSV
added 2025/08/14 6:52 p.m.1 views

MAL-2025-12198 Malicious code in @zalastax/nolb-lion-lib7 (npm)

The package @zalastax/nolb-lion-lib7 was found to contain malicious code...

7.2AI score
Exploits0
OSV
OSV
added 2025/08/14 6:52 p.m.0 views

MAL-2025-18938 Malicious code in dshellx (npm)

The package dshellx was found to contain malicious code...

7.2AI score
Exploits0
OSV
OSV
added 2025/08/14 6:52 p.m.1 views

MAL-2025-10655 Malicious code in @zalastax/nolb-am- (npm)

The package @zalastax/nolb-am- was found to contain malicious code...

7.2AI score
Exploits0
OSV
OSV
added 2025/08/14 6:52 p.m.1 views

MAL-2025-10260 Malicious code in @zalastax/nolb-_nob (npm)

The package @zalastax/nolb-nob was found to contain malicious code...

7.2AI score
Exploits0
OSV
OSV
added 2025/08/14 6:52 p.m.2 views

MAL-2025-29415 Malicious code in plugin-polaris (npm)

The package plugin-polaris was found to contain malicious code...

7.2AI score
Exploits0
OSV
OSV
added 2025/08/14 6:52 p.m.2 views

MAL-2025-25604 Malicious code in lostbut (npm)

The package lostbut was found to contain malicious code...

7.2AI score
Exploits0
Wiz blog
Wiz blog
added 2024/10/31 12:55 p.m.6 views

Supply chain attack on lottie-player: everything you need to know

Supply chain attack in popular lottie-player library compromises websites with malicious Web3 wallet prompts – update or revert the library to avoid the compromised versions...

7.2AI score
Exploits0
CNVD
CNVD
added 2017/01/20 12:0 a.m.3 views

Oracle Java SE and JRockit Remote Security Vulnerability

Oracle Java SE and JRockit are both products of Oracle Corporation. Java SE Java Platform Standard Edition is used for developing and deploying Java applications on desktops, servers, and embedded devices and real-time environments; JRockit is a Java virtual machine built into Oracle Fusion...

7.5CVSS8.4AI score0.03167EPSS
Exploits0References1
Rows per page
Query Builder